CVE-2002-1449

CVE-2002-1449

EPSS 2.7%

eUpload 1.0 stores the password.txt password file in plaintext under the web document root, which allows remote attackers to overwrite arbitrary files by reading password.txt.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://archives.neohapsis.com/archives/bugtraq/2002-07/0412.html http://www.iss.net/security_center/static/9733.php http://www.securityfocus.com/bid/5369